Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-1055

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to decode the userPassword attribute instead of the userCertificate attribute which...

5.5CVSS6.2AI score0.00188EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.23 views

RHEL 9 : redhat-ds:12 (RHSA-2023:3489)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:3489 advisory. Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol LDAP serve...

5.5CVSS5.8AI score0.00188EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.25 views

RHEL 8 : redhat-ds:11 (RHSA-2023:4655)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4655 advisory. Red Hat Directory Server is an LDAPv3-compliant directory server. The suite of packages includes the Lightweight Directory Access Protocol LDAP serve...

5.5CVSS5.8AI score0.00188EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/08/15 2:14 p.m.22 views

Moderate: Red Hat Security Advisory: redhat-ds:11 security, bug fix, and enhancement update

An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.6 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

5.5CVSS6.1AI score0.00188EPSS
Exploits0References4
CVE
CVE
added 2023/02/27 12:0 a.m.99 views

CVE-2023-1055

CVE-2023-1055 affects RHDS 11/12 and Red Hat Directory Server components (389-ds-base). The issue occurs when LDAP browsing entries decodes userPassword instead of userCertificate, leaking sensitive information. A local attacker with a cockpit-389-ds process can list processes and display hashed ...

5.5CVSS4.9AI score0.00188EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder